AT&T agreed to pay $177 million after two separate data incidents exposed the personal information of roughly 182 million people combined. If you were an AT&T customer at any point in recent years, you may have received an email about a data breach settlement—and you may have dismissed it as another junk notice.

4 related posts

Affected Customers: 73M (2019 breach) + 109M (2022–2023 records) · Max Claim: $7,500 combined · Administrator: Kroll · Payments Begin: Early 2026

Quick snapshot

1Confirmed facts
  • Federal judge granted preliminary approval in June 2025 (Time)
  • Kroll Settlement Administration handles notices and claims (Kroll Official)
  • $177 million total settlement; $149M for 2019 breach, $28M for 2022–2023 breach (Click2Houston)
2What’s unclear
3Timeline signal
  • Agreement reached March 2025; notices sent by August 4, 2025 (Click2Houston)
  • Final approval hearing scheduled December 3, 2025 (Time)
  • Payments expected to begin early 2026 after final approval and appeals resolve (Malwarebytes)
4What’s next

The table below summarizes key settlement details including deadlines, allocations, and affected customer counts.

Detail Information
Settlement Website www.telecomdatasettlement.com
Claim Registration att-prod-forms.ksacms.com
Administrator Kroll Settlement Administration
Total Settlement Amount $177 million
2019 Breach Allocation $149 million
2022–2023 Breach Allocation $28 million
Affected (2019 breach) 73 million customers
Affected (2022–2023) 109 million customers
Claim Deadline November 18, 2025 (reported extension to December 18 in some sources)
Final Approval Hearing December 3, 2025

How do I know if I qualify for the AT&T settlement?

You qualify if you were a current or former AT&T account holder in the United States whose personal information appeared in either breach incident. AT&T announced the first incident on March 30, 2024, after customer data from a 2019 breach appeared on the dark web. A second, separate incident was announced July 12, 2024, involving call and text records from May 1, 2022, through October 31, 2022, and again on January 2, 2023. The settlement divides affected customers into two groups: those whose data appeared in the first breach (AT&T 1) and those whose records appeared in the second (AT&T 2). Some customers were affected by both incidents—they fall into the overlap settlement class and are eligible to claim from either or both.

Eligibility for AT&T 1 Data Incident

AT&T 1 covers the 2019 data breach involving names, addresses, phone numbers, email addresses, dates of birth, passcodes, and billing account numbers. Customers whose Social Security numbers were exposed fall into Tier 1 for the highest potential payout. Those without SSN exposure fall into Tier 2. The breach affected roughly 73 million people, including 7.6 million current customers and 65.4 million former customers, meaning a large portion of those eligible may not have active AT&T accounts today.

Eligibility for AT&T 2 Data Incident

AT&T 2 covers call and text metadata records from the specified 2022–2023 period. Eligible claimants include account owners or line/end users whose information was involved. This breach affected approximately 109 million customers. The payout structure differs from AT&T 1, with lower maximums and a separate tier system.

Class Member ID requirements

To file a claim, you need a Class Member ID. Notices were sent via email from attsettlement@e.emailksa.com. If you did not receive a notice, contact Kroll directly at (833) 890-4930. Class members in the overlap category—those whose data appeared in both breaches—may have received notices for each incident and should verify they filed claims for both if they want to maximize their potential payout.

Bottom line: Former AT&T customers are eligible. Overlap claimants who filed for both incidents may receive up to $7,500 combined.

How much will I get from the AT&T data breach settlement?

The maximum payout depends on which incident affected you, whether you have documentation of losses, and how many total claims are filed. For AT&T 1, documented losses up to $5,000 are available for customers who can prove financial harm from 2019 or later. For AT&T 2, documented losses up to $2,500 are available for losses on or after April 14, 2024. Customers whose data appeared in both incidents can potentially receive up to $7,500 combined—the maximum for overlap claimants. However, these are caps, not guarantees. If the total value of valid claims exceeds available funds, payouts are distributed on a pro-rata basis, meaning each claimant receives a proportional share.

Payout based on leaked data

For AT&T 1, the tier you fall into depends on what specific data was exposed. Tier 1 applies if your Social Security number was included—these customers have the highest potential payout. Tier 2 applies to everyone else in AT&T 1 whose SSN was not exposed. For AT&T 2, the Tier 3 Cash Payment provides an alternative for customers who do not have documented losses but were still affected.

Group 1 vs Group 2 incidents

The 2019 breach (AT&T 1) involved personal identifying information stored in AT&T systems—a more sensitive category that typically qualifies for higher compensation. The 2022–2023 incident (AT&T 2) involved call and text records metadata, which while concerning, is treated differently in the settlement structure. The $149 million allocated for AT&T 1 versus $28 million for AT&T 2 reflects this difference in severity and scope.

Up to $7,500 max claim

The $7,500 maximum applies only to overlap claimants—those whose data appeared in both incidents—who file documented loss claims for each breach. Achieving the maximum requires having losses from both incidents and providing documentation for each. Without documented losses, the alternative Tier 3 payment for AT&T 2 provides a base amount, and Tier 2 for AT&T 1 provides a lower documented amount.

The catch

The actual per-person payout depends on how many claims are filed. With 182 million people potentially affected across both incidents, even valid claimants may receive far less than the stated maximums if the claims pool is large.

How do I file a claim for the AT&T data breach settlement?

Claims were submitted through the official settlement website or by mail to Kroll Settlement Administration. The process required having a Class Member ID, which eligible customers should have received via email notification. Those without a Class Member ID needed to register first. If you did not receive a notice by email, you could contact Kroll at (833) 890-4930 to verify your eligibility and obtain your ID.

Official claim form locations

The official settlement website is Telecom Data Settlement official website. Claim forms were available at Kroll claim form portal. Both URLs are operated by or on behalf of Kroll Settlement Administration. Customers should verify they are using the correct URLs, as fake settlement sites occasionally appear during high-profile class actions.

Registration for non-account owners

Former customers whose data was exposed in the 2019 breach but who no longer have active AT&T accounts were still eligible to file. These customers needed to register with Kroll using information that could verify their identity and confirm their inclusion in the affected class. The registration process allowed former customers to establish their eligibility even without an active account.

Deadline details

The original claim filing deadline was November 18, 2025. Some reports indicated a potential extension to December 18, 2025, though confirmation of this extension from the official settlement site is not immediately clear. The exclusion and objection deadline was October 17, 2025. The final approval hearing was scheduled for December 3, 2025. As of the official settlement site’s current notice, the claim filing deadline has passed.

What to watch

If you missed the deadline and believe you should have received a notice, contact Kroll immediately. Documentation of why you did not receive notice may be relevant in certain circumstances.

Is the AT&T data settlement real?

Yes. A federal judge granted preliminary approval in June 2025, confirming that AT&T agreed to settle both incidents in June 2025. The settlement is being administered by Kroll, a well-established settlement administration firm. The final approval hearing is scheduled for December 3, 2025. Customers can verify the settlement’s legitimacy by visiting Telecom Data Settlement official website, which is operated by Kroll on behalf of the settlement.

Court approvals status

Preliminary approval was granted by a federal judge in June 2025. This is a significant milestone in class action settlements, meaning the judge found the settlement terms fair enough to proceed to class notice and claims filing. Final approval depends on whether any objections are raised and whether the court determines the settlement is appropriate after the December 3, 2025 hearing.

Official settlement website

The only official settlement website is Telecom Data Settlement official website. Customers should be cautious of other URLs that may appear in search results. The website displays current notices about the settlement status, including that the claim filing deadline has passed.

Preliminary approval June 2025

The preliminary approval date is confirmed from multiple sources, including Time news article and Malwarebytes security analysis. Notices were sent to class members by August 4, 2025.

Bottom line: The settlement is legitimate and court-approved. Only file claims through www.telecomdatasettlement.com or att-prod-forms.ksacms.com.

What happened in the AT&T data breach?

AT&T experienced two separate data incidents. The first involved customer data from a 2019 breach that appeared on the dark web and was announced March 30, 2024. AT&T reset customer passcodes on that date following discovery of the breach. The second incident was announced July 12, 2024, involving call and text records accessed through a breach at cloud provider Snowflake. Both incidents led to consolidated lawsuits and ultimately the $177 million settlement agreement reached in March 2025.

AT&T 1 Data Incident details

The AT&T 1 incident involved data from a 2019 breach that was discovered and announced on March 30, 2024. Exposed information included names, addresses, phone numbers, email addresses, dates of birth, passcodes, and billing account numbers. In some cases, Social Security numbers were included. Approximately 73 million people were affected, including both current and former customers.

AT&T 2 Data Incident details

The AT&T 2 incident involved call and text records from a breach at cloud provider Snowflake. The affected records covered the period from May 1, 2022, through October 31, 2022, and also January 2, 2023. The breach affected approximately 109 million customers. AT&T became aware of this incident separately and announced it on July 12, 2024.

What customer data was exposed

For AT&T 1, exposed data included personal identifying information such as names, addresses, phone numbers, email addresses, dates of birth, passcodes, and billing account numbers. Social Security numbers were included for some customers. For AT&T 2, exposed data consisted of call and text metadata—phone numbers of calls and texts, call durations, and similar record information—not the content of communications.

Editor’s note

The distinction between the two incidents is important: AT&T 1 involved personal identifying information that could be used for identity theft, while AT&T 2 involved metadata about communications patterns.

Steps to file your claim

The claim filing deadline has passed, but understanding the process helps if you need to reference future settlements or verify whether you missed this one. Here’s how eligible customers were instructed to file:

  1. Check your email for a notice. Look for messages from attsettlement@e.emailksa.com containing your Class Member ID and instructions on how to file. If you didn’t receive a notice, contact Kroll at (833) 890-4930.
  2. Register if you don’t have a Class Member ID. Visit att-prod-forms.ksacms.com to register and obtain your Class Member ID if you believe you were affected but did not receive a notice.
  3. Gather documentation of losses. If you experienced documented financial losses from either breach, collect bank statements, identity theft reports, or other evidence supporting your claim for the maximum payout.
  4. Submit your claim form. File online at att-prod-forms.ksacms.com or by mail to Kroll Settlement Administration before the deadline. Overlap claimants should file for both incidents separately.
  5. Wait for final approval and payments. Payments are expected to begin in early 2026 after the final court approval hearing scheduled for December 3, 2025.

The implication: Even though the deadline has passed, understanding this process helps affected customers recognize legitimate settlement notices in the future and act promptly.

Timeline of key dates

The following timeline tracks the major milestones from breach discovery through settlement implementation.

Date Event
2019 Original data breach occurred at AT&T
March 30, 2024 AT&T announces AT&T 1 incident; resets customer passcodes
July 12, 2024 AT&T announces AT&T 2 incident involving Snowflake breach
June 2025 AT&T agrees to settle both incidents
June 2025 Federal judge grants preliminary approval
August 4, 2025 Settlement administrator sends notices to class members
October 17, 2025 Exclusion and objection deadline
November 18, 2025 Original claim filing deadline (December 18 per some reports)
December 3, 2025 Final approval hearing
Early 2026 Payments expected to begin after final approval

Confirmed vs unconfirmed

Confirmed facts

  • Preliminary approval granted in June 2025 by federal judge
  • Kroll Settlement Administration handles notices and claims
  • 73 million affected in 2019 breach; 109 million in 2022–2023 breach
  • $177 million total settlement; $149M for AT&T 1, $28M for AT&T 2
  • Settlement limited to US citizens and residents
  • Claim filing deadline has passed per official site
  • Final approval hearing scheduled December 3, 2025
  • AT&T agreed to settle in December 2025

What’s uncertain

  • Exact per-person payout amounts (pending claims count)
  • Whether November 18 deadline was formally extended to December 18
  • Number of claims filed by deadline
  • Whether final approval will face challenges at December 3 hearing
  • Whether notices were sent by August 4, 2025 (one source only)
  • How many overlap claimants filed for both incidents

What experts say

The claim filing deadline has passed, and claim forms are no longer available.

— Official notice on Telecom Data Settlement Official Site

AT&T is set to pay $177 million to customers affected by two significant data breaches.

— Malwarebytes security outlet

The 2019 breach affected 73 million: 7.6 million current customers, 65.4 million former customers.

Click2Houston local news report

The upshot

For customers affected by both incidents who filed documented loss claims before the deadline, the potential maximum is $7,500—but actual payments will depend on total claims filed and court approval. Those who missed the deadline have no further recourse through this settlement.

The AT&T data breach settlement represents one of the largest telecom data breach settlements in recent US history, with $177 million allocated across two separate incidents affecting over 180 million customers. For those who filed claims before the deadline, the wait for actual payment begins now, with funds expected to distribute in early 2026 after final court approval. The settlement demonstrates the financial stakes for companies that fail to protect customer data—and the potential value of responding quickly when settlement notices arrive in your inbox.

Related reading: Slip and Fall Lawyers – Hiring, Costs and Claims Guide

Additional sources

business.cch.com, att.com, kroll.com

The AT&T data breach settlement promises payouts up to $7,500 for verified losses, with full settlement claims overviewsettlement claims overview available through Kroll’s process.

Don't miss these

Frequently asked questions

What is the AT&T settlement payout date?

Payments are expected to begin in early 2026 after the final approval hearing scheduled for December 3, 2025. Actual distribution depends on final court approval and any appeals.

Who is eligible for AT&T data breach compensation?

US citizens and residents who were AT&T customers (current or former) whose personal information appeared in either the 2019 breach (AT&T 1) or the 2022–2023 call records breach (AT&T 2). Customers whose data appeared in both incidents may file claims for each separately.

How to get a Class Member ID for the AT&T settlement?

Class Member IDs were included in email notices sent from attsettlement@e.emailksa.com. If you did not receive a notice, contact Kroll at (833) 890-4930 to verify your eligibility and obtain your ID.

What data was exposed in the AT&T breaches?

AT&T 1 exposed names, addresses, phone numbers, email addresses, dates of birth, passcodes, and billing account numbers—and in some cases, Social Security numbers. AT&T 2 exposed call and text metadata including phone numbers and call durations.

Can former AT&T customers claim settlement benefits?

Yes. The 2019 breach affected approximately 65.4 million former AT&T customers in addition to 7.6 million current customers. Former customers are eligible and should file if they received a notice.

Where can I find the official AT&T settlement claim form?

The official settlement website is www.telecomdatasettlement.com and the claim form was available at att-prod-forms.ksacms.com. Both are operated by Kroll Settlement Administration.

Is there a no win no fee option for data breach settlements?

This settlement does not involve attorney fees passed on to class members—AT&T agreed to pay the settlement amount separately from any attorneys’ fees. Class members file claims directly without needing to hire an attorney.